How does Facebook stop a BREACH attack?

by Justin Lafferty

Though Facebook has moved to an HTTPS format, that doesn’t mean the site is completely safe. There’s a general attack on HTTPS-friendly sites called BREACH, which interacts with the technology that usually shields against a different attack called cross-site request forgery (CSRF). CSRF is used against sites with user accounts, such as Facebook.Read the full article